Attribute Release. Contractual Matters
|
|
- Duane Douglas
- 6 years ago
- Views:
Transcription
1 Attribute Release Technical and Legal Issues Contractual Matters Wolfgang Pempe, DFN-Verein DARIAH/DASISH AAI Workshop, 17/18 October 2013, Cologne
2 Overview Attribute Release Technical Issues Legal Issues CoC and other Solutions, supporting Measures Contractual Matters AAI Contracts DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 2
3 Attribute Release Technical Issues The Standard Situation Operationial IdP, running for a long time users One Attribute Filter Policy per SP Configuration requires restart of servlet container (not necessarily, but quite often) How to set up a new Attribute Filter Policy? What happens if something goes wrong? DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 3
4 Attribute Release Legal Issues (1) Data Protection in Germany... federal BDSG TKG TMG state LDSG LDSG LDSG LDSG home org. Local DP Reg. Local DP Reg. Local DP Reg. Local DP Reg. Local DP Reg. Local DP Reg. IdP IdP IdP IdP IdP IdP DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 4
5 Attribute Release Legal Issues (2) is not that easy Complex hierarchy of laws and regulations Different legal conditions depending on location of IdP (federal state and even Home Organization) IdP operator has to consult the local DPO IdP operators are reluctant to release personal data (in some cases, DPOs may be uncertain, too) DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 5
6 Attribute Release Solutions (1) Supporting Measures (by Fed Op) Improve & extend online documentation (Shibboleth IdP) How to configure attribute filter as reloadable resource server.xml (no interaction with servlet container necessary) More examples of Attribute Filter Policies Usage of opaque identifiers (edupersonuniqueid [draft] vs. eppn) Implementation of CoC with metadata registry (done) Promote CoC (scheduled for the next weeks with CLARIN) Promote / encourage implementation of user consent modules, esp. uapprove (comply with 4 BDSG) DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 6
7 Attribute Release Solutions (1) Supporting Measures (by SP Op) Promote Services The more popular a service becomes + the bigger the user community (like SSH), the more IdP Ops are willing to release personal data (e.g. to GigaMove) Implementation of CoC next slides Facilitate attribute release technically by supporting a small and unified attribute profile, for instance the CoC profile or CLARIAH Call for Action on Federated Identity Declaration of required attributes in metadata DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 7
8 Attribute Release Solutions (3) Code of Conduct for Service Providers (GÉANT Data Protection Code of Conduct for Service Providers in EU/EEA) SP declares conformance with EU Data Protection Directive both in a human readable (PrivacyStatementURL) and machine readable (Entity Category) way (almost) fixed maximum set of attributes, actually required attributes have to be documented in metadata Federation Op has to make sure that those requirements are met Ideally only one Attribute Filter Policy required to release attributes to a group of SPs DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 8
9 Attribute Release Solutions (4) CoC Entity Category (DFN-AAI metadata administration tool) DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 9
10 Attribute Release Solutions (5) Does the Code of Conduct make sense? Only summarizes existing law / regulations (BTW: DFN-AAI SP contract binds SP to German and EU DP law) But still helpful: Confidence-building measure: IdP operators are no lawyers and CoC makes it clearly visible that SP really cares for data protection Technically effective way to release attributes via Entity Category-based Attribute Filter Policy CoC-compliant entities are monitored by edugain and participating federations, e.g. if the Privacy Statement URL is being removed in the DFN-AAI metadata registry, the Entity Category is automatically being removed, too no attribute release DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 10
11 AAI Contracts DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 11
12 DFN Contractual Framework Services for R&E Institutions Framework Agreement ( Rahmenvertrag ) Internet VC AAI and more... Service Agreements ( Dienstvereinbarungen ) For users of DFN Internet, all other services are free. Please note: AAI Service Providers are no users DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 12
13 Services of the DFN-association Contracting of providers and users Operation of central technical services Development of new features or applications Organising international cooperation User support Provision of digital certificates (DFN-PKI) BUT: DFN is NOT involved in licence agreements related to information /content providers. DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 13
14 Central Contracting The DFN-association is the central contractual partner for all participants of DFN-AAI. Federation S1 S2 S... A1 DFN An Sn A2 A... DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 14
15 IdP Contract The AAI-contract is an addition to other contracts between DFN and research institutions ( just another piece of paper ). Subjects of IdP agreement: - acceptance of der DFN federation policy - acceptance of attribute schemes - commitment to meet the demands on IdM systems ( Verlässlichkeitsklassen ) - commitment (of DFN) to operate central technical services (Discovery-Service, usw.) - legal issues e.g. liability, termination, place of jurisdiction 144 IdP agreements signed DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 15
16 SP Contract Modification of the SWITCHaai Federation Partner Agreement Subjects of SP agreement: - acceptance of German law - acceptance of der DFN federation policy - acceptance of European data privacy laws (for US-American companies: Safe-Harbour) - legal issues e.g. liability, termination, place of jurisdiction Free of charge 131 SP agreements signed DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 16
17 Development of AAI contracts Contracts/entities IdPs: 144 / 127 SPs: 131 / 148 Local SPs: / 205 DARIAH / DASISH AAI Workshop, 17/18 October 2013 Cologne, Wolfgang Pempe 17
18 Thanks for your attention! Questions? Comments? Contact www:
DARIAH-AAI. DASISH AAI Meeting. Nijmegen, March 9th,
DARIAH-AAI DASISH AAI Meeting Nijmegen, March 9th, 2014 www.dariah.eu What is DARIAH? DARIAH: Digital Research Infrastructure for the Arts and Humanities One of the few ESFRI research infrastructures for
More informationOptions for Joining edugain. Lukas Hämmerle, SWITCH DARIAH Workshop, Köln 18 October 2013
Options for Joining edugain Lukas Hämmerle, SWITCH DARIAH Workshop, Köln 18 October 2013 Outline 1. GE ANT and the Enabling Users task 2. Options to Join edugain 3. Discussion 2 GÉANT (GN3plus) - vital
More informationSWITCHaai Service Description
SWITCHaai Service Description Nicole Beranek Zanon Thomas Lenggenhager Version: V1.0 Created: 15. Nov. 2011 Last change: 05. Dec. 2011 http://www.switch.ch/aai/docs/switchaai_service_description.pdf 1
More informationFederated Identity Management
Federated Identity Management SWITCHaai Team aai@switch.ch Agenda What is Federated Identity Management? 2 What is a Federation? The SWITCHaai Federation Interfederation Evolution of Identity Management
More informationManagement der Virtuellen Organisation DARIAH im Rahmen von Shibboleth- basierten Föderationen. 58. DFN- Betriebstagung, Berlin, 12.3.
Management der Virtuellen Organisation DARIAH im Rahmen von Shibboleth- basierten Föderationen 58. DFN- Betriebstagung, Berlin, 12.3.2013 Peter Gietz, DAASI International GmbH DARIAH EU VCC 1 e-infrastructure
More informationAttribute Release in SWITCHaai
Attribute Release in SWITCHaai CoCo and R&S in a full-mesh federation Lukas Hämmerle lukas.haemmerle@switch.ch Porto, 15. June 2015 Overview Motiviation Facts about SWITCHaai How we organize attribute
More informationFederated Identity Management
Federated Identity Management SWITCHaai Team aai@switch.ch Agenda What is Federated Identity Management? What is a Federation? The SWITCHaai Federation Interfederation 2 Evolution of Identity Management
More informationIntroduction of Identity & Access Management Federation. Motonori Nakamura, NII Japan
Introduction of Identity & Access Management Federation Motonori Nakamura, NII Japan } IP networking } The network enables a variety type of attractive applications } Communication E-mail Video conferencing
More informationScalable Negotiator for a Community Trust Framework in Federated Infrastructures (Snctfi)
Scalable Negotiator for a Community Trust Framework in Federated Infrastructures (Snctfi) Licia Florio (GÉANT), David Groep (Nikhef), Christos Kanellopoulos (GÉANT), David Kelsey (STFC), Mikael Linden
More information1. General requirements
Title CLARIN B Centre Checklist Version 6 Author(s) Peter Wittenburg, Dieter Van Uytvanck, Thomas Zastrow, Pavel Straňák, Daan Broeder, Florian Schiel, Volker Boehlke, Uwe Reichel, Lene Offersgaard Date
More informationREFEDS Minutes, 22 April 2012
DOC VERSION:0.1 DATE: 24/04/12 PAGE 1/6 title / reference:refeds-minutes-120422 REFEDS Minutes, 22 April 2012 Licia Florio and Nicole Harris Abstract: Minutes of the REFEDS BOF held in conjunction with
More informationIdentity Harmonisation. Nicole Harris REFEDS Coordinator GÉANT.
Identity Harmonisation Nicole Harris REFEDS Coordinator GÉANT http://www.aaiedu.hr/dan2015.html the voice that articulates the mutual needs of research and education identity federations worldwide refeds.org
More informationNew trends in Identity Management
New trends in Identity Management Peter Gietz, DAASI International GmbH peter.gietz@daasi.de Track on Research and Education Networking in South East Europe, Yu Info 2007, Kopaionik, Serbia 14 March 2007
More informationTo make that choice, please click under privacy policy the checkbox (https://www.uniassist.de/en/privacy-policy/)
Privacy Information Protecting your privacy is important to us, the ARBEITS- UND SERVICESTELLE FÜR INTERNATIONALE STUDIENBEWERBUNGEN (uni-assist) e.v., Geneststraße 5, 10829 Berlin, Germany. You may also
More informationGDPR and DPO. DPO and DPM. Michel Gerdes DPO DFN-CERT Services GmbH DFN-CERT Services GmbH GDPR and DPO: Slide 1
GDPR and DPO DPO and DPM Michel Gerdes DPO DFN-CERT Services GmbH 27.09.2017 2017 DFN-CERT Services GmbH GDPR and DPO: Slide 1 ToC The DPO Role according to GDPR Data Protection at research institutions
More informationICT Legal Consulting on GDPR: the possible value of certification in data protection compliance and accountability
ICT Legal Consulting on GDPR: the possible value of certification in data protection compliance and accountability Prof. Dr. Paolo Balboni Founding Partner Professor of Privacy, Cybersecurity, and IT Contract
More informationData Privacy Statement for myportal to go
Data Privacy Statement for myportal to go Contents 1. Scope... 2 2. Data Handled by Unify Through myportal to go... 2 3. Disclosure of Your Personal Data... 3 4. Accessing, Correcting and Deleting Your
More informationAttribute Release Update
Attribute Release Update Upcoming changes for IdP administrators Lukas Hämmerle lukas.haemmerle@switch.ch Berne, 30. June 2016 IdP Attribute Release Changes 1. edugain SPs without
More informationCan R&E federations trust Research Infrastructures? - The Snctfi Trust Framework
Can R&E federations trust Research Infrastructures? - The Snctfi Trust Framework 1a, David Groep b, Licia Florio c, Christos Kanellopoulos c, Mikael Linden d, Ian Neilson a, Stefan Paetow e, Wolfgang Pempe
More informationAdtech and GDPR What to consider when choosing your partner
Adtech and GDPR What to consider when choosing your partner 1 Agenda What to avoid and What to do Where is Adform on GDPR Posibilities for advertisers 2 This is about GDPR, not the unknown eprivacy update
More informationGoogle Cloud & the General Data Protection Regulation (GDPR)
Google Cloud & the General Data Protection Regulation (GDPR) INTRODUCTION General Data Protection Regulation (GDPR) On 25 May 2018, the most significant piece of European data protection legislation to
More informationShibboleth authentication for Sync & Share - Lessons learned
Shibboleth authentication for Sync & Share - Lessons learned Enno Gröper Abteilung 4 - Systemsoftware und Kommunikation Computer- und Medienservice Humboldt-Universität zu Berlin 30 Jan 2018 Overview Introduction
More informationImpacts of the GDPR in Afnic - Registrar relations: FAQ
Impacts of the GDPR in Afnic - Registrar relations: FAQ Background The adoption of Regulation (Eu) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural
More informationEGNOS and ESSP Certification. ESESA Aviation Workshop 26 th - 27 th October 2010
EGNOS and ESSP Certification ESESA Aviation Workshop 26 th - 27 th October 2010 Content 1. Certification needs and framework 2. SES Certification regulations 3. Certification activities 4. Current Status
More informationPrivacy Policy. MIPS Website Privacy Policy. Document Information. Contact Details. Version 1.0 Version date March 2018.
Privacy Policy MIPS Website Privacy Policy Version 1.0 Version date March 2018 Document Information Prepared for Users of MIPS websites Prepared by MIPS NV Date 27/02/2018 Contact Details Joffrey WILLEM
More informationGéant-TrustBroker Dynamic inter-federation identity management
Géant-TrustBroker Dynamic inter-federation identity management Daniela Pöhn TNC2014 Dublin, Ireland May 19 th, 2014 Agenda Introduction Motivation GNTB Overview GNTB in Details Workflow Initiation of GNTB
More informationPrivacy Statement for Use of the Certification Service of Swisscom (sales name: "All-in Signing Service")
Swisscom (sales name: "All-in Signing Service") General Privacy is a matter of trust, and your trust is important to us. Handling personal data in a responsible and legally compliant manner is a top priority
More informationEight Minute Expert GDPR
Eight Minute Expert GDPR GDPR Login Password MIN1 What is the GDPR? The General Data Protection Regulation is a new regulation by the EU that will replace the current Data Protection Directive of 1995.
More informationKey Updates to the IPC s Survey Research Guidelines
Key Updates to the IPC s Survey Research Guidelines David Weinkauf Policy and Information Technology Officer Office of the Information and Privacy Commissioner of Ontario (IPC) Privacy Professionals Community
More informationCliniSys Website Privacy Policy
CliniSys Website Privacy Policy Version 1.0 Document Information Prepared for: Users of the CliniSys Website Prepared by: CliniSys Solutions Limited Date: 13 February 2018 Contact Details: Matthew Fouracre,
More informationWonde may collect personal information directly from You when You:
Privacy Policy Updated: 17th April 2018 1. Scope At Wonde, we take privacy very seriously. We ve updated our privacy policy ( Policy ) to ensure that we communicate to You, in the clearest way possible,
More informationMutual Recognition Agreement/Arrangement: General Introduction, Framework and Benefits
Workshop for Caribbean countries to promote the development and implementation of Conformity Assessment programmes St. Augustine (Trinidad and Tobago) 2-4 December 2014 Mutual Recognition Agreement/Arrangement:
More informationFluid Metering, Inc. Privacy Policy
Fluid Metering, Inc. Privacy Policy Your privacy is important to us. This Privacy Policy describes our practices with respect to (i) the personal information we gather on our website (ii) the way we use
More informationConnect. Communicate. Collaborate. GN2 JRA5 update. Jürgen Rauschenbach (DFN), JRA5 team 04/02/08 Marseille. JRA5 Team
GN2 JRA5 update Jürgen Rauschenbach (DFN), JRA5 team 04/02/08 Marseille eduroam Working on the eduroam database and a new dissemination look (maps) RadSec release 1.0 Beta is out - reasonable stable and
More informationGÉANT-TrustBroker project overview
GÉANT-TrustBroker project overview Slides assembled by the Géant-TrustBroker team at Leibniz Supercomputing Centre, Germany for a short presentation by Licia Florio at the TF-EMC2 meeting Zurich, Switzerland
More informationEUDAT - Open Data Services for Research
EUDAT - Open Data Services for Research Johannes Reetz EUDAT operations Max Planck Computing & Data Centre Science Operations Workshop 2015 ESO, Garching 24-27th November 2015 EUDAT receives funding from
More informationThe GDPR Are you ready?
The GDPR Are you ready? kpmg.ie The GDPR - Overview The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) will come into force from 25th May 2018, replacing the existing data protection
More informationTRUST IDENTITY. Trusted Relationships for Access Management: AND. The InCommon Model
TRUST. assured reliance on the character, ability, strength, or truth of someone or something - Merriam-Webster TRUST AND IDENTITY July 2017 Trusted Relationships for Access Management: The InCommon Model
More informationPRIVACY COMMITMENT. Information We Collect and How We Use It. Effective Date: July 2, 2018
Effective Date: July 2, 2018 PRIVACY COMMITMENT Protecting your privacy is very important to Prosci and this privacy policy is our way of providing you with details about the types of information we collect
More informationHow icims Supports. Your Readiness for the European Union General Data Protection Regulation
How icims Supports Your Readiness for the European Union General Data Protection Regulation The GDPR is the EU s next generation of data protection law. Aiming to strengthen the security and protection
More informationGDPR is coming in less than 2 months Are you ready?
GDPR is coming in less than 2 months Are you ready? Charles-Albert Helleputte Partner, Brussels +32 2 551 5982 chelleputte@mayerbrown.com 30 March 2018 2 GDPR is everywhere... You were invited by UNICEO
More informationData Processing Agreement
Data Processing Agreement Merchant (the "Data Controller") and Nets (the "Data Processor") (separately referred to as a Party and collectively the Parties ) have concluded this DATA PROCESSING AGREEMENT
More information1. General provisions
FIBO Group Privacy Policy 1. General provisions The International Financial Holding FIBO Group (hereinafter referred to as FIBO Group ) highly appreciates the relationships with the existing and potential
More information2. Which personal data is processed by SF Studios and from which source does the personal data originate?
PRIVACY NOTICE 1. Introduction The protection of the privacy and personal data of our customers, partners and employees is important to us and we work hard to ensure to always process personal data in
More informationLegal Notice SEPRAD Expert-Workshop 2017
page 1 Contractpartner Your contract for admission into the " Sept. 18 th 19 th, 2017 in Seibersdorf, as a visitor is with Seibersdorf Labor GmbH, DVR: 4000728, 2444 Seibersdorf, Austria, www.seibersdorf-laboratories.at
More informationeid Interoperability for PEGS WS-Federation
eid Interoperability for PEGS WS-Federation Workshop Brussels 10 May 2007 Agenda 1 Scope 2 Category 3 Approach and description 4 Relevance for eid Interoperability 5 Pro s and Con s 6 Relationship with
More informationCEM Benchmarking Privacy Policy
CEM Benchmarking Privacy Policy Final Draft: 18/05/18 Next Review Date: 22/05/19 Page 1 Contents Page 1 Outline 3 2 Categories of personal data 3 3 Sources of personal data 3 4 Purposes 4 5 Lawful basis
More informationIntroduction. Prepared by: ICANN Org Published on: 12 January 2018
Proposed Interim Models for Compliance with ICANN Agreements and Policies in Relation to the European Union s General Data Protection Regulation For Discussion Prepared by: ICANN Org Published on: 12 January
More informationData Protection. Code of Conduct for Cloud Infrastructure Service Providers
Data Protection Code of Conduct for Cloud Infrastructure Service Providers 27 JANUARY 2017 Introduction... 3 1 Structure of the Code... 5 2 Purpose... 6 3 Scope... 7 4 Data Protection Requirements... 9
More informationEU data security and privacy trends
EU data security and privacy trends Top issues for HR and global mobility 26 29 October 2014 Disclaimer EY refers to the global organization, and may refer to one or more, of the member firms of Ernst
More informationDARIAH Update. 9th FIM4R Workshop. Vienna, Novemer 30, Peter Gietz, DAASI International GmbH.
DARIAH Update 9th FIM4R Workshop Vienna, Novemer 30, 2015 Peter Gietz, DAASI International GmbH www.dariah.eu What is DARIAH? DARIAH: Digital Research Infrastructure for the Arts and Humanities One of
More informationAARC Overview. Licia Florio, David Groep. 21 Jan presented by David Groep, Nikhef.
AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef AARC? Authentication and Authorisation for Research and Collaboration support the collaboration model across institutional
More informationEUDAT. A European Collaborative Data Infrastructure. Daan Broeder The Language Archive MPI for Psycholinguistics CLARIN, DASISH, EUDAT
EUDAT A European Collaborative Data Infrastructure Daan Broeder The Language Archive MPI for Psycholinguistics CLARIN, DASISH, EUDAT OpenAire Interoperability Workshop Braga, Feb. 8, 2013 EUDAT Key facts
More informationPRIVACY NOTICE 1. Introduction
PRIVACY NOTICE 1. Introduction The protection of the privacy and personal data of our customers, partners and employees is important to us and we work hard to ensure to always process personal data in
More informationMutual Recognition Agreement/Arrangement: General Introduction, Framework and Benefits
Conformity and Interoperability Training for SADC Region on Type Approval testing for Mobile Terminals, Homologation Procedures and Market Surveillance Mutual Recognition Agreement/Arrangement: General
More informationDATA PROTECTION LAWS OF THE WORLD. Germany
DATA PROTECTION LAWS OF THE WORLD Germany Downloaded: 25 November 2017 GERMANY Last modified 26 January 2017 LAW The main legal source of data protection in Germany is the Federal Data Protection Act (
More informationDATA PRIVACY & PROTECTION POLICY POLICY INFORMATION WE COLLECT AND RECEIVE. Quality Management System
DATA PRIVACY & PROTECTION POLICY POLICY This Data Privacy & Protection Policy applies to ELMO Software Limited s Cloud HR & Payroll applications and platform (collectively, the Services ), elmosoftware.com.au
More informationANSI-CFP Accredited Food Protection Manager Certification Programs Education Outreach. Benefits of the ANSI-CFP Accredited Certification Programs
ANSI-CFP Accredited Food Protection Manager Certification Programs Education Outreach Benefits of the ANSI-CFP Accredited Certification Programs ANSI-CFP Accredited Food Protection Manager Certification
More informationData Protection and Privacy Policy PORTOBAY GROUP Version I
Data Protection and Privacy Policy PORTOBAY GROUP 2018-03-07 Page 1 of 12 Contents Commitment to Data Protection and Privacy... 3 Definitions... 3 Entity Responsible for Processing... 4 Contact information
More informationSAFE-BioPharma RAS Privacy Policy
SAFE-BioPharma RAS Privacy Policy This statement discloses the privacy practices for the SAFE-BioPharma Association ( SAFE- BioPharma ) Registration Authority System ( RAS ) web site and describes: what
More informationLegal compliance requests for social networks, as shown by greydate.com, a mock social community network site, based on German law / EC Directives
Legal compliance requests for social networks, as shown by greydate.com, a mock social community network site, based on German law / EC Directives by Oliver M. Habel, PhD, teclegal Habel Rechtsanwälte
More informationLaw Enforcement Recommended RAA Amendments and ICANN Due Diligence Detailed Version
Date: 18 October 2010 Law Enforcement Recommended RAA Amendments and ICANN Due Diligence Detailed Version Introduction: Below are: 1) suggested amendments to the RAA and; 2) due diligence recommendations
More informationIntexta Web Services Privacy Statement
Intexta Web Services Privacy Statement 1.0 About Intexta Web Services Intexta Web Services (referred to below as Intexta, we or us )) is a web design and development microstudio based in Wales, UK, with
More informationIaaS Framework Agreements Pan-European Cloud Services ready for adoption
IaaS Framework Agreements Pan-European Cloud Services ready for adoption Dr. Jakob Tendel GÉANT Cloud Service Delivery Team German Research Network DFN Belnet Networking Conference, Brussels 18 th Oct.
More informationENISA s Position on the NIS Directive
ENISA s Position on the NIS Directive 1 Introduction This note briefly summarises ENISA s position on the NIS Directive. It provides the background to the Directive, explains its significance, provides
More informationCyber Security Reliability Standards CIP V5 Transition Guidance:
Cyber Security Reliability Standards CIP V5 Transition Guidance: ERO Compliance and Enforcement Activities during the Transition to the CIP Version 5 Reliability Standards To: Regional Entities and Responsible
More informationIntroducing Shibboleth. Sebastian Rieger
Introducing Shibboleth Sebastian Rieger sebastian.rieger@gwdg.de Gesellschaft für wissenschaftliche Datenverarbeitung mbh Göttingen, Germany CLARIN AAI Hands On Workshop, 25.02.2009, Oxford eresearch Center
More informationThird public workshop of the Amsterdam Group and CODECS C-ITS Deployment in Europe: Common Security and Certificate Policy
Third public workshop of the Amsterdam Group and CODECS C-ITS Deployment in Europe: Common Security and Certificate Policy 14 February 2017 Amsterdam Gerhard Menzel European Commission - DG MOVE Scope:
More informationSTANDARDS TO HELP COMPLY WITH EU LEGISLATION. EUROPE HAS WHAT IT TAKES INCLUDING THE WILL?
ETSI SUMMIT Releasing the Flow Data Protection and Privacy in a Data-Driven Economy 19 April 2018 STANDARDS TO HELP COMPLY WITH EU LEGISLATION. EUROPE HAS WHAT IT TAKES INCLUDING THE WILL? Presented by
More informationTucows Guide to the GDPR. March 2018
Tucows Guide to the GDPR March 2018 About This Webinar Who is this webinar for? Resellers of Tucows services Familiar with the domain world and ICANN policy Familiar with our blog posts What are we doing
More informationOne Sector Community Limited ACN ( OSC ) Privacy Policy
One Sector Community Limited ACN 623 427 323 ( OSC ) Privacy Policy General Collection OSC and its related entities (referred to in this document as we, us or our ) are committed to protecting the personal
More informationIntroduction to Identity Management Systems
Introduction to Identity Management Systems Ajay Daryanani Middleware Engineer, RedIRIS / Red.es Kopaonik, 13th March 2007 1 1 Outline 1. Reasons for IdM 2. IdM Roadmap 3. Definitions 4. Components and
More informationSCALA FUND ADVISORY PRIVACY POLICY
SCALA FUND ADVISORY PRIVACY POLICY Last updated 25 May 2018 1 INTRODUCTION This document describes how Scala Fund Advisory Oy (hereinafter Scala ) processes the personal data of Scala s business partners
More informationJRA5: Roaming and Authorisation
JRA5: Roaming and Authorisation Jürgen Rauschenbach, DFN-Verein 7 th TF-EMC2 Meeting, Malaga 16 17 October 2006 Introduction JRA5 will build a European Roaming Infrastructure based on eduroam JRA5 will
More informationLAW OF THE REPUBLIC OF KAZAKSTAN «ON CERTIFICATION»
April 27\ 99 Draft LAW OF THE REPUBLIC OF KAZAKSTAN «ON CERTIFICATION» This Law shall establish legal basis of certification of products, quality systems and production, (further processes), works and
More informationInspiring Insights Ltd Privacy Policy - May Important Information. 2. The data we collect and how we store it.
Inspiring Insights Ltd Privacy Policy - May 2018 Inspiring Insights LTD respects your privacy and is committed to protecting your personal data. This privacy notice informs you as to how we look after
More informationPrivacy Statement for Use of the Trust Service of Swisscom IT Services Finance S.E., Austria
Privacy Statement for Use of the Trust Service of Swisscom IT Services Finance S.E., Austria General Privacy is a matter of trust, and your trust is important to us. Handling personal data in a responsible
More information2. HDF AAI Meeting -- Demo Slides
2. HDF AAI Meeting -- Demo Slides Steinbuch Centre for Computing Marcus Hardt KIT University of the State of Baden-Wuerttemberg and National Research Center of the Helmholtz Association www.kit.edu Introduction
More informationNetworking Session - A trusted cloud ecosystem How to help SMEs innovate in the Cloud
Networking Session - A trusted cloud ecosystem How to help SMEs innovate in the Cloud ICT2015, 21 October 2015 Lisbon, Portugal Dr. Paolo Balboni, Partner at ICT Legal Consulting & Scientific Director
More informationGDPR and the Privacy Shield
GDPR and the Privacy Shield Mark Prinsley Partner +44 20 3130 3900 mprinsley@mayerbrown.com Kendall Burman Counsel + 202 263 3210 kburman@mayerbrown.com Speakers Kendall Burman Counsel Washington DC Mark
More informationPrivacy Policy. LAST UPDATED: 23 June March 2017
Privacy Policy LAST UPDATED: 23 June 20156 March 2017 VERSION 3.0 2.0 Comment [A1]: The Privacy Policy has been updated because we now use Google Analytics, to help improve our services and our communications
More informationToken-based Payment in Dynamic SAML-based Federations
Token-based Payment in Dynamic SAML-based Federations David J. Lutz 1 and Burkhard Stiller 2 1 Rechenzentrum Universitaet Stuttgart Allmandring 30; 70550 Stuttgart; Germany David.Lutz@rus.uni-stuttgart.de
More informationVERSION 1.3 MAY 1, 2018 SNOWFLY PRIVACY POLICY SNOWFLY PERFORMANCE INC. P.O. BOX 95254, SOUTH JORDAN, UT
VERSION 1.3 MAY 1, 2018 SNOWFLY PRIVACY POLICY SNOWFLY PERFORMANCE INC. P.O. BOX 95254, SOUTH JORDAN, UT 84095-9998 SNOWFLY PRIVACY POLICY This Privacy Policy describes Snowfly s practices regarding the
More informationIdentity management. Tuomas Aura CSE-C3400 Information security. Aalto University, autumn 2014
Identity management Tuomas Aura CSE-C3400 Information security Aalto University, autumn 2014 Outline 1. Single sign-on 2. SAML and Shibboleth 3. OpenId 4. OAuth 5. (Corporate IAM) 6. Strong identity 2
More informationTowards Horizon The Enabling Users
11-12-2014 Contractual Date: 28-11-2014 Actual Date: 11-12-2014 Grant Agreement No.: 605243 Activity: SA5 Task Item: Task 5 Nature of Deliverable: R (Report) Dissemination Level: PU (Public) Lead Partner:
More informationInCommon Federation: Participant Operational Practices
InCommon Federation: Participant Operational Practices Participation in the InCommon Federation ( Federation ) enables a federation participating organization ( Participant ) to use Shibboleth identity
More informationDown Under Centre Employment Hub - Privacy Policy Introduction
Down Under Centre Employment Hub - Privacy Policy Introduction Your Privacy is of the utmost importance, we are therefore committed to safeguarding your personal information. That starts with helping you
More informationGENERAL DATA PROTECTION REGULATION (GDPR) CLIENT INFORMATION GENERAL DATA PROTECTION REGULATION CLIENT INFORMATION
GENERAL DATA PROTECTION REGULATION (GDPR) CLIENT INFORMATION GENERAL DATA PROTECTION REGULATION CLIENT INFORMATION Compliant since 2017 Effective communication is based on relevancy and respect We see
More informationLegally-Binding Electronic Signatures with OnTask
Legally-Binding Electronic Signatures with OnTask Accusoft Corporation. All rights reserved. With the passage of the ESIGN (Electronic Signatures in Global and National Commerce) Act in 2000, Congress
More informationDisclosure text - PDS (PKI Disclosure Statement) for electronic signature and authentication certificates
Disclosure text - PDS (PKI Disclosure Statement) for electronic signature and authentication certificates Index INDEX... 2 1. DISCLOSURE TEXT APPLICABLE TO NATURAL PERSON CERTIFICATES ISSUED ON QSCD...
More informationPREPARING FOR THE GDPR AT THE UNIVERSITY OF HELSINKI
PREPARING FOR THE GDPR AT THE UNIVERSITY OF HELSINKI Jarkko Reittu Data Protection Officer and Legal Counsel University of Helsinki, Administrative Services jarkko.reittu@helsinki.fi 1 MY BACKGROUND JARKKO
More informationGESIS Datenservice Unter Sachsenhausen Köln Fax:
GESIS Datenservice Unter Sachsenhausen 6-8 50667 Köln Fax: +49-221-47694-199 Unless stated differently, please send this agreement to the address of the GESIS Data Service (see above). Should a different
More informationIntroductory guide to data sharing. lewissilkin.com
Introductory guide to data sharing lewissilkin.com Executive Summary Most organisations carry out some form of data sharing, whether it be data sharing between organisations within the group or with external
More informationPrivacy Policy and GDPR Compliance
Privacy Policy and GDPR Compliance The following privacy policy describes how we collect, use and share your personal information when you visit or make an online order at laoudis.gr and at laoudis.com
More informationIdentity Federation Requirements
Identity Federation Requirements By: Technical Editing Author: Stephen Skordinski Version: 1.001 Published: September 26, 2012 Document Change History for Technical Documents Template Version Number Version
More informationIdentity management. Tuomas Aura T Information security technology. Aalto University, autumn 2011
Identity management Tuomas Aura T-110.4206 Information security technology Aalto University, autumn 2011 Outline 1. Single sign-on 2. OpenId 3. SAML and Shibboleth 4. Corporate IAM 5. Strong identity 2
More informationThe types of personal information we collect and hold
Privacy Policy Modified 22 October, 2018 Our privacy obligations Matriks IT takes privacy seriously and cares about personal information. 'Personal information' means information or an opinion about an
More informationSynchronoss Website Privacy Statement
Synchronoss Website Privacy Statement This website privacy statement ("Privacy Statement") explains how Synchronoss Technologies, Inc. ( Synchronoss, we, us and our ) may collect, use, store and disseminate
More informationScience Europe Consultation on Research Data Management
Science Europe Consultation on Research Data Management Consultation available until 30 April 2018 at http://scieur.org/rdm-consultation Introduction Science Europe and the Netherlands Organisation for
More informationTHE NEW GENERAL DATA PROTECTION REGULATION IMPLICATIONS FOR ENTERPRISES. Forum financier du Brabant wallon
THE NEW GENERAL DATA PROTECTION REGULATION IMPLICATIONS FOR ENTERPRISES Forum financier du Brabant wallon 14.12.2017 Data Protection should be part of every company s or organisation s DNA Do you process
More information